Permission Sets

A permission set is a collection of administrator-defined policies that AWS SSO uses
to
determine a user's effective permissions to access a given AWS account. Permission
sets can
contain either AWS managed policies or custom policies that are stored in AWS SSO. Policies are
essentially documents that act as containers for one or more permission statements.
These
statements represent individual access controls (allow or deny) for various tasks
that
determine what tasks users can or cannot perform within the AWS account.

Permission sets are stored in AWS SSO and are only used for AWS accounts. They are
not
used to manage access to cloud applications. Permission sets ultimately get created
as IAM roles in a
given AWS account, with trust policies that allow users to assume the role through
AWS SSO.

Javascript is disabled or is unavailable in your browser.

To use the AWS Documentation, Javascript must be enabled. Please refer to your browser's
Help pages for instructions.